Bleeping Computer

An encrypted ZIP file can have two correct passwords — here's why

Password-protected ZIP archives are common means of compressing and sharing sets of files—from sensitive documents to malware samples to even malicious files (i.e. phishing "invoices" in emails). But, ...
Bleeping Computer

Clever ‘File Archiver In The Browser’ phishing trick uses ZIP domains

A new 'File Archivers in the Browser' phishing kit abuses ZIP domains by displaying fake WinRAR or Windows File Explorer windows in the browser to convince users to launch malicious files. Earlier ...
Neowin

Microsoft apparently now scanning password-protected ZIP files for malware and virus

Microsoft has apparently begun scanning encrypted and password-protected ZIP files now on SharePoint. The change was discovered yesterday by a senior Security Researcher and Analyst. It looks like ...
Security Boulevard

That “job brief” on Google Forms could infect your device

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain. The attack typically begins when a victim downloads a business-themed ZIP ...
ExtremeTech

ZIP, RAR Have Surpassed Office Files as Most-Used Malware Containers

We all, hopefully, learned long ago not to open suspicious Microsoft Office files, which have long been one of the most common vectors for malware infection. According to a new report, there's a new ...
Ars Technica

Why does Windows store ZIP passwords?

While Windows doesn't give you the ability to create encrypted ZIP files, software like 7Zip does. If you choose the standard ZIP encryption (weak encryption) when making the ZIP file, then Windows ...